CVE-2001-0736 – University of Washington Pico 3.x/4.x - File Overwrite
https://notcve.org/view.php?id=CVE-2001-0736
Vulnerability in (1) pine before 4.33 and (2) the pico editor, included with pine, allows local users local users to overwrite arbitrary files via a symlink attack. • https://www.exploit-db.com/exploits/20493 http://marc.info/?l=bugtraq&m=98749102621604&w=2 http://marc.info/?l=bugtraq&m=99106787825229&w=2 http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-047.php3?dis=8.0 http://www.redhat.com/support/errata/RHSA-2001-042.html https://exchange.xforce.ibmcloud.com/vulnerabilities/6367 •
CVE-2001-1030
https://notcve.org/view.php?id=CVE-2001-1030
Squid before 2.3STABLE5 in HTTP accelerator mode does not enable access control lists (ACLs) when the httpd_accel_host and http_accel_with_proxy off settings are used, which allows attackers to bypass the ACLs and conduct unauthorized activities such as port scanning. • http://archives.neohapsis.com/archives/bugtraq/2001-07/0362.html http://download.immunix.org/ImmunixOS/7.0/updates/IMNX-2001-70-031-01 http://www.calderasystems.com/support/security/advisories/CSSA-2001-029.0.txt http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-066.php3 http://www.redhat.com/support/errata/RHSA-2001-097.html http://www.securityfocus.com/archive/1/197727 https://exchange.xforce.ibmcloud.com/vulnerabilities/6862 •
CVE-2001-0977
https://notcve.org/view.php?id=CVE-2001-0977
slapd in OpenLDAP 1.x before 1.2.12, and 2.x before 2.0.8, allows remote attackers to cause a denial of service (crash) via an invalid Basic Encoding Rules (BER) length field. • http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000417 http://www.cert.org/advisories/CA-2001-18.html http://www.debian.org/security/2001/dsa-068 http://www.kb.cert.org/vuls/id/935800 http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-069.php3 http://www.osvdb.org/1905 http://www.redhat.com/support/errata/RHSA-2001-098.html http://www.securityfocus.com/bid/3049 https://exchange.xforce.ibmcloud.com/vulnerabilities/6904 •
CVE-2001-0439
https://notcve.org/view.php?id=CVE-2001-0439
licq before 1.0.3 allows remote attackers to execute arbitrary commands via shell metacharacters in a URL. • http://archives.neohapsis.com/archives/freebsd/2001-04/0607.html http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000389 http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-032.php3 http://www.osvdb.org/5641 http://www.redhat.com/support/errata/RHSA-2001-022.html http://www.redhat.com/support/errata/RHSA-2001-023.html https://exchange.xforce.ibmcloud.com/vulnerabilities/6261 •
CVE-2001-0416
https://notcve.org/view.php?id=CVE-2001-0416
sgml-tools (aka sgmltools) before 1.0.9-15 creates temporary files with insecure permissions, which allows other users to read files that are being processed by sgml-tools. • http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000390 http://marc.info/?l=bugtraq&m=98477491130367&w=2 http://www.debian.org/security/2001/dsa-038 http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-030.php3 http://www.novell.com/linux/security/advisories/2001_016_sgmltool_txt.html http://www.redhat.com/support/errata/RHSA-2001-027.html http://www.securityfocus.com/bid/2506 http://www.securityfocus.com/bid/2683 https://exchange.xforce.ibmcloud.com/ •